Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/6927e76b-3c73-4bd0-a916-53e8583bb266/ea553dae8f13eadabc74dae6e79597e24ed817b7.roa
File:                     ea553dae8f13eadabc74dae6e79597e24ed817b7.roa (raw, json)
Hash identifier:          emLU3mLLOQgQmOjGN4n1Otk2UvxcuVzTZDDeBhQUqOQ=
Subject key identifier:   85:93:7E:05:48:AE:BA:05:FD:E0:B6:49:CB:BA:70:D4:2D:96:8A:77
Certificate issuer:       /CN=770e1abd110be430cfdaff1a4797b6c876329f89
Certificate serial:       05F7
Authority key identifier: 1D:03:2A:0F:D9:9B:86:5B:86:15:8F:B1:8D:71:4E:25:80:DF:95:0C
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/770e1abd110be430cfdaff1a4797b6c876329f89.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/6927e76b-3c73-4bd0-a916-53e8583bb266/ea553dae8f13eadabc74dae6e79597e24ed817b7.roa
Signing time:             Wed 13 Jul 2022 17:46:06 +0000
ROA not before:           Wed 13 Jul 2022 03:00:00 +0000
ROA not after:            Sat 13 Jul 2024 03:00:00 +0000
asID:                     52300
IP address blocks:        190.110.176.0/21 maxlen: 24
                          2803:2ac0::/32 maxlen: 32

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/6927e76b-3c73-4bd0-a916-53e8583bb266/770e1abd110be430cfdaff1a4797b6c876329f89.crl
                          rsync://repository.lacnic.net/rpki/lacnic/6927e76b-3c73-4bd0-a916-53e8583bb266/770e1abd110be430cfdaff1a4797b6c876329f89.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/770e1abd110be430cfdaff1a4797b6c876329f89.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 19:38:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1527 (0x5f7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=770e1abd110be430cfdaff1a4797b6c876329f89
        Validity
            Not Before: Jul 13 03:00:00 2022 GMT
            Not After : Jul 13 03:00:00 2024 GMT
        Subject: CN=ea553dae8f13eadabc74dae6e79597e24ed817b7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:80:1e:f3:3c:cc:ec:71:84:ea:ee:38:40:31:a5:
                    c8:3f:1d:bf:78:02:f0:68:17:0d:93:d5:15:e5:0d:
                    f3:84:ba:69:38:36:62:27:e7:83:c7:6f:d0:d3:f9:
                    91:93:fa:92:21:c9:f0:2d:86:5e:9f:e1:03:5a:f1:
                    e0:c5:8f:5f:67:77:38:a5:ea:29:f8:ac:61:cf:31:
                    a1:23:4e:52:05:27:f0:c3:f0:dc:77:27:5d:7b:c4:
                    f9:87:67:d5:79:80:3d:30:69:a6:4e:9d:3d:d7:70:
                    0b:ca:66:b9:78:dd:ee:59:ee:79:ca:64:fb:3b:ef:
                    22:d1:8e:ec:86:e0:2a:bb:ea:cf:45:41:54:4f:63:
                    2b:b7:21:5d:0d:50:b3:f8:20:ee:f0:72:24:82:9b:
                    5a:fc:1b:fe:90:86:fb:68:e6:09:1c:5a:66:cf:80:
                    81:95:d5:68:38:51:ff:1c:61:c5:35:1c:7f:88:aa:
                    ca:18:81:fb:af:3c:68:08:b5:ae:21:f3:d9:be:9c:
                    f8:cd:5a:59:04:b3:02:fd:e0:75:41:9b:09:1b:1d:
                    f3:35:3d:0f:c7:5b:ae:04:4c:ad:8a:c7:ae:ab:52:
                    83:09:fc:5d:35:64:13:08:3f:c1:24:80:41:a7:c2:
                    a7:0c:ce:dd:1a:40:97:5d:16:30:fc:c4:5c:a6:5c:
                    00:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                85:93:7E:05:48:AE:BA:05:FD:E0:B6:49:CB:BA:70:D4:2D:96:8A:77
            X509v3 Authority Key Identifier:
                keyid:1D:03:2A:0F:D9:9B:86:5B:86:15:8F:B1:8D:71:4E:25:80:DF:95:0C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/770e1abd110be430cfdaff1a4797b6c876329f89.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/6927e76b-3c73-4bd0-a916-53e8583bb266/ea553dae8f13eadabc74dae6e79597e24ed817b7.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/6927e76b-3c73-4bd0-a916-53e8583bb266/770e1abd110be430cfdaff1a4797b6c876329f89.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.110.176.0/21
                IPv6:
                  2803:2ac0::/32

    Signature Algorithm: sha256WithRSAEncryption
         51:66:44:cb:2b:ed:1e:32:65:f6:d7:7f:bc:03:a9:b5:20:9c:
         0e:80:1c:4a:b2:68:c6:91:82:9a:bd:5f:d2:3c:95:0e:94:90:
         15:50:30:c9:ad:52:3f:12:e6:79:33:32:75:1c:60:81:90:e5:
         71:84:30:07:a5:76:8c:19:99:c2:7d:40:2e:b5:c6:75:b0:a1:
         f2:64:95:6e:a4:03:65:d8:b1:34:0a:53:f7:e8:0a:fd:f4:ae:
         f4:d4:58:86:98:6e:98:df:3f:8c:ba:52:01:9f:58:d1:e9:18:
         69:ff:84:77:e1:18:26:ec:39:e0:11:71:f9:ec:ba:5f:aa:2d:
         ee:96:26:1d:b4:f5:df:a0:fe:a4:39:34:f9:3f:22:c0:95:29:
         6a:69:62:11:2e:5c:68:f2:ce:6f:e6:ca:11:e4:4f:46:c8:5d:
         41:73:3e:f8:ef:c9:24:60:40:57:4a:ae:13:06:c0:5a:24:19:
         9a:87:d1:40:19:ae:42:7a:39:94:04:eb:47:cf:41:ac:37:c3:
         3a:bc:be:18:a2:1c:62:8e:98:a0:c7:5e:cb:27:94:47:e3:cf:
         4a:5f:14:c0:d9:14:91:8d:e0:e8:2a:68:b5:d5:99:9d:26:f0:
         a9:cc:9d:43:dc:ac:54:f4:e5:55:63:a1:9b:19:17:9c:1d:e1:
         4b:53:9d:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 03:23:54 2024 by rpki-client on console-ams.rpki-client.org